Vulnerability Name:

CVE-2017-8109 (CCN-125397)

Assigned:2017-04-25
Published:2017-04-25
Updated:2017-05-05
Summary:The salt-ssh minion code in SaltStack Salt 2016.11 before 2016.11.4 copied over configuration from the Salt Master without adjusting permissions, which might leak credentials to local attackers on configured minions (clients).
CVSS v3 Severity:7.8 High (CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H)
6.8 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): Low
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
4.0 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)
3.5 Low (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): Low
Integrity (I): None
Availibility (A): None
CVSS v2 Severity:2.1 Low (CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): None
Availibility (A): None
2.1 Low (CCN CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): None
Availibility (A): None
Vulnerability Type:CWE-200
Vulnerability Consequences:Obtain Information
References:Source: MITRE
Type: CNA
CVE-2017-8109

Source: BID
Type: Third Party Advisory, VDB Entry
98095

Source: CCN
Type: BID-98095
SaltStack Salt CVE-2017-8109 Local Information Disclosure Vulnerability

Source: CONFIRM
Type: Issue Tracking, Patch
https://bugzilla.suse.com/show_bug.cgi?id=1035912

Source: CCN
Type: SaltStack Web site
Salt 2016.11.4 Release Notes

Source: CONFIRM
Type: Patch, Release Notes, Vendor Advisory
https://docs.saltstack.com/en/latest/topics/releases/2016.11.4.html

Source: XF
Type: UNKNOWN
saltstack-salt-cve20178109-info-disc(125397)

Source: CONFIRM
Type: Issue Tracking, Patch, Third Party Advisory
https://github.com/saltstack/salt/issues/40075

Source: CONFIRM
Type: Issue Tracking, Patch, Third Party Advisory
https://github.com/saltstack/salt/pull/40609

Source: CONFIRM
Type: Issue Tracking, Patch, Third Party Advisory
https://github.com/saltstack/salt/pull/40609/commits/6e34c2b5e5e849302af7ccd00509929c3809c658

Source: CCN
Type: WhiteSource Vulnerability Database
CVE-2017-8109

Vulnerable Configuration:Configuration 1:
  • cpe:/a:saltstack:salt:2016.11:*:*:*:*:*:*:*
  • OR cpe:/a:saltstack:salt:2016.11.0:*:*:*:*:*:*:*
  • OR cpe:/a:saltstack:salt:2016.11.0:rc1:*:*:*:*:*:*
  • OR cpe:/a:saltstack:salt:2016.11.0:rc2:*:*:*:*:*:*
  • OR cpe:/a:saltstack:salt:2016.11.1:*:*:*:*:*:*:*
  • OR cpe:/a:saltstack:salt:2016.11.2:*:*:*:*:*:*:*
  • OR cpe:/a:saltstack:salt:2016.11.3:*:*:*:*:*:*:*

  • Configuration CCN 1:
  • cpe:/a:saltstack:salt:2016.11.0:*:*:*:*:*:*:*

  • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.opensuse.security:def:20178109
    V
    CVE-2017-8109
    2022-05-20
    oval:org.opensuse.security:def:32227
    P
    Security update for java-1_8_0-openjdk (Important)
    2021-11-23
    oval:org.opensuse.security:def:32216
    P
    Security update for MozillaFirefox (Important)
    2021-11-17
    oval:org.opensuse.security:def:14371
    P
    rpcbind-0.2.3-23.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:13993
    P
    openvswitch-2.5.1-24.15 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:13968
    P
    libudisks2-0-2.1.3-1.13 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:13875
    P
    libXinerama1-1.1.3-3.54 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:13856
    P
    java-1_8_0-openjdk-1.8.0.101-14.3 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:14025
    P
    rpcbind-0.2.3-21.4 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:13839
    P
    groff-1.22.2-5.287 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:13792
    P
    cracklib-2.9.0-7.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:14721
    P
    pam-modules-12.1-23.12 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:14327
    P
    mozilla-nspr-32bit-4.13.1-18.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:14699
    P
    libz1-1.2.11-1.27 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:14302
    P
    libudisks2-0-2.1.3-1.13 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:14061
    P
    xen-4.7.0_12-23.4 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:14209
    P
    libapr-util1-1.5.3-1.46 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:14048
    P
    tomcat-8.0.36-11.4 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:14190
    P
    libX11-6-1.6.2-11.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:14037
    P
    strongswan-5.1.3-22.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:14172
    P
    jakarta-commons-fileupload-1.1.1-120.113 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:14123
    P
    dovecot22-2.2.30.2-14.2 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:14055
    P
    w3m-0.5.3-157.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:14033
    P
    socat-1.7.2.4-3.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:15056
    P
    libpoppler-glib8-0.43.0-16.15.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:15034
    P
    libncurses5-32bit-5.9-64.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:14396
    P
    tomcat-8.0.43-23.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:14382
    P
    squashfs-4.3-6.2 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:32134
    P
    Security update for openexr (Important)
    2021-06-24
    oval:org.opensuse.security:def:32123
    P
    Security update for xterm (Important)
    2021-06-18
    oval:org.opensuse.security:def:13695
    P
    perl-HTML-Parser-3.71-1.178 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:13725
    P
    squashfs-4.3-1.15 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:13703
    P
    ppp-2.4.7-1.7 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:29359
    P
    Security update for bind (Important)
    2021-05-04
    oval:org.opensuse.security:def:29348
    P
    Security update for sudo (Important)
    2021-04-20
    oval:org.opensuse.security:def:32284
    P
    Security update for openssl (Moderate)
    2021-03-24
    oval:org.opensuse.security:def:32273
    P
    Security update for MozillaFirefox (Important)
    2021-01-12
    oval:org.opensuse.security:def:29312
    P
    Security update for cyrus-sasl (Important)
    2020-12-28
    oval:org.opensuse.security:def:32000
    P
    Security update for python-setuptools (Important)
    2020-12-02
    oval:org.opensuse.security:def:27903
    P
    Security update for Xen
    2020-12-01
    oval:org.opensuse.security:def:31914
    P
    Security update for gd (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28586
    P
    Security update for libxml2
    2020-12-01
    oval:org.opensuse.security:def:28537
    P
    Security update for compat-openssl097g
    2020-12-01
    oval:org.opensuse.security:def:31990
    P
    Security update for java-1_7_1-ibm (Important)
    2020-12-01
    oval:org.opensuse.security:def:28484
    P
    Security update for curl (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28674
    P
    Security update for MozillaFirefox (Important)
    2020-12-01
    oval:org.opensuse.security:def:31916
    P
    Security update for gd (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28332
    P
    Security update for php53 (Important)
    2020-12-01
    oval:org.opensuse.security:def:28630
    P
    Security update for Mozilla Firefox
    2020-12-01
    oval:org.opensuse.security:def:31905
    P
    Security update for freeradius-server (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28248
    P
    Security update for libxml2 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28614
    P
    Security update for xorg-x11
    2020-12-01
    oval:org.opensuse.security:def:33403
    P
    Security update for Salt (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28191
    P
    Security update for libapr1 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:32583
    P
    nagios-plugins on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:33364
    P
    Security update for openvpn-openssl1 (Important)
    2020-12-01
    oval:org.opensuse.security:def:28107
    P
    Security update for glibc (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:32527
    P
    gtk2 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:32726
    P
    libpulse-browse0 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:27977
    P
    Security update for LibVNCServer (Critical)
    2020-12-01
    oval:org.opensuse.security:def:32371
    P
    Security update for tcpdump (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:32682
    P
    gzip on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:27913
    P
    Security update for xen (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:32660
    P
    fetchmail on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:37702
    P
    wget on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:32621
    P
    zoo on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:29323
    P
    Security update for compat-openssl097g (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28685
    P
    Security update for flash-player (Important)
    2020-12-01
    oval:org.opensuse.security:def:31926
    P
    Recommended update for ghostscript-library (Important)
    2020-12-01
    oval:org.opensuse.security:def:28641
    P
    Security update for bind (Important)
    2020-12-01
    oval:org.opensuse.security:def:31915
    P
    Security update for gd (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28625
    P
    Security update for Image Magick
    2020-12-01
    oval:org.opensuse.security:def:33414
    P
    Security update for Salt (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:38401
    P
    libxcb-dri2-0 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:33375
    P
    Security update for IBM Java 1.4.2
    2020-12-01
    oval:org.opensuse.security:def:38342
    P
    libotr5 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:32737
    P
    libvorbis on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:38182
    P
    file on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:32693
    P
    kernel-default on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:38092
    P
    w3m on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:32671
    P
    ghostscript-fonts-other on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:27892
    P
    Security update for samba (Important)
    2020-12-01
    oval:org.opensuse.security:def:38035
    P
    ppc64-diag on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:32632
    P
    apache2 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:27891
    P
    Security update for Samba
    2020-12-01
    oval:org.opensuse.security:def:37934
    P
    libospf0 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:37798
    P
    glibc on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:37714
    P
    xscreensaver on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:37703
    P
    wpa_supplicant on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:39241
    P
    Security update for Salt (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:31904
    P
    Security update for foomatic-filters (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28575
    P
    Security update for OpenSSL
    2020-12-01
    oval:org.opensuse.security:def:39199
    P
    libofx on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28526
    P
    Security update for wget (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:38561
    P
    colord-gtk-lang on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28473
    P
    Security update for xorg-x11-server (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:38517
    P
    xdg-utils on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28321
    P
    Security update for pam (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:38489
    P
    stunnel on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:27902
    P
    Security update for Xen
    2020-12-01
    oval:org.opensuse.security:def:28237
    P
    Security update for LibVNCServer (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:38450
    P
    powerpc-utils on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:27901
    P
    Security update for xalan-j2
    2020-12-01
    oval:org.opensuse.security:def:28180
    P
    Security update for the Linux Kernel (Important)
    2020-12-01
    oval:org.opensuse.security:def:32572
    P
    libvorbis on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28096
    P
    Security update for giflib (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:32516
    P
    fvwm2 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:27967
    P
    Security update for ImageMagick (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:32360
    P
    Security update for strongswan (Moderate)
    2020-12-01
    oval:com.ubuntu.bionic:def:201781090000000
    V
    CVE-2017-8109 on Ubuntu 18.04 LTS (bionic) - medium.
    2017-04-25
    oval:com.ubuntu.artful:def:20178109000
    V
    CVE-2017-8109 on Ubuntu 17.10 (artful) - medium.
    2017-04-25
    oval:com.ubuntu.xenial:def:20178109000
    V
    CVE-2017-8109 on Ubuntu 16.04 LTS (xenial) - medium.
    2017-04-25
    oval:com.ubuntu.xenial:def:201781090000000
    V
    CVE-2017-8109 on Ubuntu 16.04 LTS (xenial) - medium.
    2017-04-25
    oval:com.ubuntu.bionic:def:20178109000
    V
    CVE-2017-8109 on Ubuntu 18.04 LTS (bionic) - medium.
    2017-04-25
    oval:com.ubuntu.cosmic:def:20178109000
    V
    CVE-2017-8109 on Ubuntu 18.10 (cosmic) - medium.
    2017-04-25
    oval:com.ubuntu.cosmic:def:201781090000000
    V
    CVE-2017-8109 on Ubuntu 18.10 (cosmic) - medium.
    2017-04-25
    oval:com.ubuntu.trusty:def:20178109000
    V
    CVE-2017-8109 on Ubuntu 14.04 LTS (trusty) - medium.
    2017-04-25
    BACK
    saltstack salt 2016.11
    saltstack salt 2016.11.0
    saltstack salt 2016.11.0 rc1
    saltstack salt 2016.11.0 rc2
    saltstack salt 2016.11.1
    saltstack salt 2016.11.2
    saltstack salt 2016.11.3
    saltstack salt 2016.11.0